Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3230302e31302e33322e302f32302d3230203d3e20323634383530.roa
File: 3230302e31302e33322e302f32302d3230203d3e20323634383530.roa (raw, json)
Hash identifier: +e3mIjGpOknHl0jJLJgWypnwszNz7+YiFhwdSSx06Qo=
Subject key identifier: C3:0A:F7:7E:C2:CB:4E:7C:01:B1:A5:F7:21:58:25:30:55:A3:57:E3
Certificate issuer: /CN=FA7A92609CADE6A78C1E178DEFE7C9C24CF75169
Certificate serial: 06FBDD90D7BFE7BAE31F7F684A881B5EB139FD45
Authority key identifier: FA:7A:92:60:9C:AD:E6:A7:8C:1E:17:8D:EF:E7:C9:C2:4C:F7:51:69
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3230302e31302e33322e302f32302d3230203d3e20323634383530.roa
Signing time: Tue 04 Feb 2025 18:39:13 +0000
ROA not before: Tue 04 Feb 2025 18:34:13 +0000
ROA not after: Tue 03 Feb 2026 18:39:13 +0000
asID: 264850
IP address blocks: 200.10.32.0/20 maxlen: 20
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.crl
rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:56:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:fb:dd:90:d7:bf:e7:ba:e3:1f:7f:68:4a:88:1b:5e:b1:39:fd:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA7A92609CADE6A78C1E178DEFE7C9C24CF75169
Validity
Not Before: Feb 4 18:34:13 2025 GMT
Not After : Feb 3 18:39:13 2026 GMT
Subject: CN=C30AF77EC2CB4E7C01B1A5F72158253055A357E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b5:63:bf:27:a5:10:d8:d3:ca:36:4f:98:27:
bb:3f:63:fb:d2:3f:f3:2b:b7:fe:08:fe:a8:80:58:
2a:7c:d3:5f:b2:b2:f8:0f:cb:0b:64:1e:3d:d5:cf:
97:37:91:a9:4c:88:51:d4:7d:66:41:14:d7:2c:22:
de:1a:6a:b0:38:fb:b9:78:1f:61:e9:ac:81:f2:04:
9a:7b:1f:a9:b8:d8:3f:83:e0:39:49:3f:6a:86:62:
85:0c:52:c7:3f:6c:51:d3:3e:76:04:cf:ed:b3:29:
81:1f:14:d8:cf:10:6f:a5:34:bc:48:cb:f9:15:24:
0c:dd:7d:71:4b:88:1c:55:c6:98:ea:83:5e:c4:27:
dd:e5:b5:31:b2:25:0e:ae:8c:ce:ef:f5:bc:1a:94:
f6:c6:27:c6:1c:e8:e2:e3:66:82:c4:95:07:73:f6:
bf:5d:d7:6f:e4:20:ec:a9:59:ed:29:b9:3f:c5:80:
04:9c:2d:78:a3:32:05:39:16:c2:db:c0:f3:e1:32:
0a:22:1e:95:de:84:39:46:7c:25:cf:11:f7:c3:45:
be:8c:0f:5b:5c:6d:bd:ed:f3:8f:02:7a:63:55:e0:
15:bd:b3:33:fc:9d:b0:31:64:fa:68:9b:06:b2:c5:
40:d3:18:fe:39:ca:54:34:da:a5:ea:59:bf:8a:ba:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0A:F7:7E:C2:CB:4E:7C:01:B1:A5:F7:21:58:25:30:55:A3:57:E3
X509v3 Authority Key Identifier:
keyid:FA:7A:92:60:9C:AD:E6:A7:8C:1E:17:8D:EF:E7:C9:C2:4C:F7:51:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3230302e31302e33322e302f32302d3230203d3e20323634383530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.32.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:82:62:82:d6:18:23:28:46:61:6d:cd:78:cf:ce:92:f9:17:
91:ee:ca:55:18:9e:40:98:e6:b6:ce:8b:50:0c:c8:9a:9e:2d:
a1:08:4a:58:e2:36:34:f3:83:4f:09:26:f1:61:46:bf:df:e8:
85:81:0e:4e:61:cc:13:25:10:70:c3:2c:b6:d3:be:d3:19:d7:
07:22:ba:c2:5a:a6:74:57:f9:18:c9:3a:9f:db:be:86:ce:14:
ee:d3:af:25:a8:9f:1b:1c:79:ce:07:3f:df:ea:a8:c0:3e:2f:
e2:8a:aa:c5:58:50:d2:07:19:18:07:6f:52:eb:6e:59:ff:3c:
55:e8:89:52:7b:87:71:75:54:6f:03:db:4f:08:85:dd:95:0c:
9a:fd:b3:00:4f:f2:50:db:68:3d:3a:ee:01:84:5f:6a:f3:2b:
ca:be:61:75:72:8f:f6:f2:78:c8:39:9e:31:79:fe:78:07:62:
4a:8d:c0:2d:7f:35:62:65:8a:ee:45:1e:70:11:33:9c:b0:de:
20:11:c1:69:af:96:7f:35:83:5b:0f:75:83:bc:3b:5c:3c:0a:
21:01:4f:79:63:a1:a1:71:22:31:74:fd:90:6f:47:48:fe:95:
ac:31:91:19:90:40:2b:7a:cc:98:bb:18:96:ca:ec:f9:2c:1b:
f5:32:67:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:35:30 2025 by rpki-client